Authentication

Panda World uses API keys to authenticate requests. Your API keys carry many privileges, so be sure to keep them secure.

How to Authenticate

Pass your API key in the Authorization header using the Bearer scheme:

Authorization: Bearer sk-your-key-here

When using the OpenAI SDK, pass it as the api_key or apiKey parameter:

# Python
client = OpenAI(
    base_url="https://api.relay-station.com/v1",
    api_key="sk-your-key-here"
)
// Node.js
const client = new OpenAI({
  baseURL: "https://api.relay-station.com/v1",
  apiKey: "sk-your-key-here",
});

Creating API Keys

  1. Log in to your Dashboard
  2. Navigate to API Keys
  3. Click Create Key
  4. Give it a name (e.g., “Production”, “Local Dev”)
  5. Copy the key immediately — it will not be shown again

Security note: Treat API keys like passwords. Never hardcode them in client-side code or commit them to version control. Use environment variables instead.

Managing Keys

From the Dashboard you can:

  • View all keys (showing only the last 4 characters)
  • Pause a key to temporarily disable it without deleting
  • Revoke a key to permanently invalidate it
  • Set monthly limits to prevent unexpected spending

Best Practices

  • Create separate keys for development and production
  • Rotate keys periodically
  • Use environment variables ($RELAY_API_KEY)
  • Set monthly spending limits on each key
  • Monitor usage regularly through the Dashboard